Package: iptables
Version: 1.2.9-6
Severity: wishlist
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
hi,
it would be very helpful if iptables provided some default hooks with
ifupdown, such that the admin could not have to manually install scripts
and config files on every machine. for example, something like this in
/etc/network/if-pre-up.d:
#!/bin/sh
RULESET="/etc/network/firewall/iptables-$IFACE.conf"
if [ -f $RULESET ]; then
iptables-restore < $RULESET
fi
so, when a device is ifup'd, if such a RULESET file exists it's loaded
up into iptables. i don't think it would be necessary to save
automatically, it would probably even be a bad idea to do so.
like i said, it would be very nice to have functionality like this, and
it would be totally unobtrusive for someone who didn't use it.
sean
- -- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.7-1-686
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Versions of packages iptables depends on:
ii libc6 2.3.2.ds1-11 GNU C Library: Shared libraries an
- -- no debconf information
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFCKLBuynjLPm522B0RAv5YAJ9xkKvj4ApyGBqmfIcKVj202gkq3gCfSgmE
w7ytBC3pIxcrWo6mf4ynC9o=
=UCmy
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
